Modul jaringan komputer 4

Static routing

Static routing adalah salah satu metode pengiriman paket data pada jaringan komputer yang digunakan untuk mengirimkan data ke tujuan tertentu melalui jalur yang telah ditentukan sebelumnya. Metode ini merupakan alternatif dari dynamic routing yang memerlukan perangkat lunak khusus untuk menentukan jalur secara otomatis.

Pada static routing, administrator jaringan harus memasukkan informasi tentang jalur yang akan dilewati oleh paket data ke dalam tabel routing yang terdapat pada router atau perangkat jaringan lainnya. Tabel routing tersebut berisi daftar lengkap destinasi dan gateway default, serta informasi tentang interface jaringan mana yang akan digunakan untuk mengirimkan paket data.

Keuntungan dari menggunakan static routing adalah sederhana karena tidak memungkinkan adanya loop pada jalur koneksi dan mudah dikelola karena hanya mengatur routing table, tidak seperti dynamic routing yang kompleks dan memerlukan algoritma tertentu. Selain itu, penggunaan static routing juga lebih efisien dalam penggunaan bandwidth karena tidak perlu mempertimbangkan dinamika jaringan.

Namun, kekurangan dari static routing adalah kelemahan pengelolaan jika jaringan memiliki jumlah node yang banyak atau ketika topologi jaringan berubah-ubah. Jika ada beberapa router yang terhubung dalam suatu jaringan, maka administrator jaringan perlu memasukkan informasi routing untuk masing-masing router secara manual. Hal ini bisa menjadi sangat rumit jika ada banyak router di dalam jaringan.

Oleh karena itu, penggunaan static routing sebaiknya dipertimbangkan dengan baik sesuai dengan kebutuhan jaringan. Jika jaringan hanya memiliki beberapa perangkat yang saling terhubung dan topologi jaringan tidak berubah, maka static routing dapat menjadi pilihan yang tepat. Namun, jika jaringan sangat besar dengan banyak router dan topologi jaringan berubah-ubah, maka dynamic routing akan lebih cocok untuk digunakan.

Static routing dua router

command :

R1 :

[MikroTik] > system identity set name=R1
[R1] > ip address
[R1] /ip address> add address=12.12.12.1/24 interface=ether1
[R1] /ip address> add address=192.168.1.1/24 interface=ether2
[R1]/ip address>/ip route add dst-address=192.168.2.0/24 gateway=12.12.12.2

R2 :
[MikroTik] > system identity set name=R2
[R2] > ip address
[R2] /ip address> add address=12.12.12.2/24 interface=ether1
[R2] /ip address> add address=192.168.2.2/24 interface=ether2
[R2]/ip address>/ip route add dst-address=192.168.1.0/24 gateway=12.12.12.1

Untuk pengujian coba lakukan pengujian ping dari PC1 ke PC2 dan juga sebaliknya. PC1 ke PC2

PC1> ping 192.168.2.2

PC2> ping 192.168.1.2

Static Routing 3 Komputer

command :

R1:

[MikroTik] > system identity set name=R1

[R1] > ip address

[R1] /ip address> add address=12.12.12.1/24 interface=ether1

[R1] /ip address> add address=192.168.1.1/24 interface=ether2

[R1] /ip address> /ip route

[R1] /ip route> add dst-address=23.23.23.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=192.168.2.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=192.168.3.0/24 gateway=12.12.12.2

R2:

[MikroTik] > system identity set name=R2

[R2] > ip address

[R2] /ip address> add address=12.12.12.2/24 interface=ether1

[R2] /ip address> add address=23.23.23.2/24 interface=ether2

[R2] /ip address> add address=192.168.2.1/24 interface=ether3

[R2] /ip address> /ip route

[R2] /ip route> add dst-address=192.168.1.0/24 gateway=12.12.12.1

[R2] /ip route> add dst-address=192.168.3.0/24 gateway=23.23.23.3

R3:

[MikroTik] > system identity set name=R3

[R3] > ip address

[R3] /ip address> add address=23.23.23.3/24 interface=ether1

[R3] /ip address> add address=192.168.3.1/24 interface=ether2

[R3] /ip address> /ip route

[R3] /ip route> add dst-address=12.12.12.0/24 gateway=23.23.23.2

[R3] /ip route> add dst-address=192.168.2.0/24 gateway=23.23.23.2

[R3] /ip route> add dst-address=192.168.1.0/24 gateway=23.23.23.2

Routing Static Empat Router

command :

R1 :

[MikroTik] > system identity set name=R1

[R1] > ip address

[R1] /ip address> add address=12.12.12.1/24 interface=ether1

[R1] /ip address> add address=192.168.1.1/24 interface=ether2

[R1] /ip address> /ip route

[R1] /ip route> add dst-address=23.23.23.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=34.34.34.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=192.168.2.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=192.168.3.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=192.168.4.0/24 gateway=12.12.12.2

R2 :

[MikroTik] > system identity set name=R2

[R2] > ip address

[R2] /ip address> add address=12.12.12.2/24 interface=ether1

[R2] /ip address> add address=23.23.23.2/24 interface=ether2

[R2] /ip address> add address=192.168.2.1/24 interface=ether3

[R2] /ip address> /ip route

[R2] /ip route> add dst-address=34.34.34.0/24 gateway=23.23.23.3

[R2] /ip route> add dst-address=192.168.1.0/24 gateway=12.12.12.1

[R2] /ip route> add dst-address=192.168.3.0/24 gateway=23.23.23.3

[R2] /ip route> add dst-address=192.168.4.0/24 gateway=23.23.23.3

R3 :

[MikroTik] > system identity set name=R3

[R3] > ip address

[R3] /ip address> add address=23.23.23.3/24 interface=ether1

[R3] /ip address> add address=34.34.34.3/24 interface=ether2

[R3] /ip address> add address=192.168.3.1/24 interface=ether3

[R3] /ip address> /ip route

[R3] /ip route> add dst-address=12.12.12.0/24 gateway=23.23.23.2

[R3] /ip route> add dst-address=192.168.1.0/24 gateway=23.23.23.2

[R3] /ip route> add dst-address=192.168.2.0/24 gateway=23.23.23.2

[R3] /ip route> add dst-address=192.168.4.0/24 gateway=34.34.34.4

R4 :

[MikroTik] > system identity set name=R4

[R4] > ip address

[R4] /ip address> add address=34.34.34.4/24 interface=ether1

[R4] /ip address> add address=192.168.4.1/24 interface=ether2

[R4] /ip address> /ip route

[R4] /ip route> add dst-address=23.23.23.0/24 gateway=34.34.34.3

[R4] /ip route> add dst-address=12.12.12.0/24 gateway=34.34.34.3

[R4] /ip route> add dst-address=192.168.3.0/24 gateway=34.34.34.3

[R4] /ip route> add dst-address=192.168.2.0/24 gateway=34.34.34.3

[R4] /ip route> add dst-address=192.168.1.0/24 gateway=34.34.34.3

Static Routing Summarization

Command :

R1 :

[MikroTik] > system identity set name=R1

[R1] > ip address

[R1] /ip address> add address=12.12.12.1/24 interface=ether1

[R1] /ip address> add address=192.168.0.1/24 interface=ether2

[R1] /ip address> add address=192.168.1.1/24 interface=ether3

[R1] /ip address> add address=192.168.2.1/24 interface=ether4

[R1] /ip address> add address=192.168.3.1/24 interface=ether5

[R1] /ip address> /ip route

[R1] /ip route> add dst-address=192.168.4.0/24 gateway=12.12.12.2

R2 :

[MikroTik] > system identity set name=R2

[R2] > ip address

[R2] /ip address> add address=12.12.12.2/24 interface=ether1

[R2] /ip address> add address=192.168.4.1/24 interface=ether2

[R2] /ip address> /ip route

[R2] /ip route> add dst-address=192.168.0.0/22 gateway=12.12.12.1

Static Routing Default Route

melanjutkan topologi diatas

R2 :

[R2] /ip route> set 1 dst-address=0.0.0.0/0

[R2] /ip route> print

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit

# DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 A S 0.0.0.0/0 12.12.12.1 1

1 ADC 12.12.12.0/24 12.12.12.2 ether1 0

2 ADC 192.168.4.0/24 192.168.4.1 ether2 0

Point To Point Addressing

R1 :

[MikroTik] > system identity set name=R1

[R1] > ip address add address=10.10.10.10 network=20.20.20.20 interface=ether1

R2 :

[MikroTik] > system identity set name=R2

[@R2] > ip address add address=20.20.20.20 network=10.10.10.10 interface=ether1

prioritas routing

R1 :

[Mikrotik] > system identity set name=R1

[R1] > ip address

[R1] /ip address> add address=12.12.12.1/24 interface=ether1

[R1] /ip address> add address=21.21.21.1/24 interface=ether2

[R1] /ip address> add address=192.168.1.1/24 interface=ether3

R2 :

[Mikrotik] > system identity set name=R2

[R2] > ip address

[R2] /ip address> add address=12.12.12.2/24 interface=ether1

[R2] /ip address> add address=21.21.21.2/24 interface=ether2

[@R2] /ip route> set 3 dst-address=192.168.1.0/24

Fail Over

R1 :

[MikroTik] > system identity set name=R1

[R1] > ip address

[R1] /ip address> add address=12.12.12.1/24 interface=ether1

[R1] /ip address> add address=13.13.13.1/24 interface=ether2

[R1] /ip address> /ip route

[R1] /ip route> add dst-address=24.24.24.0/24 gateway=12.12.12.2

[R1] /ip route> add dst-address=34.34.34.0/24 gateway=13.13.13.3

[R1] /ip route> add dst-address=192.168.4.0/24 gateway=12.12.12.2 checkgateway=ping

[R1] /ip route> add dst-address=192.168.4.0/24 gateway=13.13.13.3 distance=2

R2 :

[MikroTik] > system identity set name=R2

[R2] > ip address

[R2] /ip address> add address=12.12.12.2/24 interface=ether1

[R2] /ip address> add address=24.24.24.2/24 interface=ether2

[R2] /ip address> /ip route

[R2] /ip route> add dst-address=13.13.13.0/24 gateway=12.12.12.1

[R2] /ip route> add dst-address=34.34.34.0/24 gateway=24.24.24.4

[R2] /ip route> add dst-address=192.168.4.0/24 gateway=24.24.24.4

[R2] /ip route> /interface disable ether1

R3 :

[MikroTik] > system identity set name=R3

[R3] > ip address

[R3] /ip address> add address=13.13.13.3/24 interface=ether1

[R3] /ip address> add address=34.34.34.3/24 interface=ether2

[R3] /ip address> /ip route

[R3] /ip route> add dst-address=12.12.12.0/24 gateway=13.13.13.1

[R3] /ip route> add dst-address=24.24.24.0/24 gateway=34.34.34.4

[R3] /ip route> add dst-address=192.168.4.0/24 gateway=34.34.34.4

R4 :

[MikroTik] > system identity set name=R4

[R4] > ip address

[R4] /ip address> add address=24.24.24.4/24 interface=ether1

[R4] /ip address> add address=34.34.34.4/24 interface=ether2

[R4] /ip address> add address=192.168.4.1/24 interface=ether3

[R4] /ip address> /ip route

[R4] /ip route> add dst-address=12.12.12.0/24 gateway=24.24.24.2

[R4] /ip route> add dst-address=13.13.13.0/24 gateway=34.34.34.3

Fail Over Without Check Gateway

R1 :

[R1] /ip route> disable 4

[R1] /ip route> add dst-address=192.168.4.0/24 gateway=12.12.12.2

[R1] /ip route> print detail

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit 4 A S dst-address=192.168.4.0/24 gateway=12.12.12.2 gateway-status=12.12.12.2 reachable via ether1 distance=1 aaaaaaascope=30 target-scope=10 5 S dst-address=192.168.4.0/24 gateway=13.13.13.3 gateway-status=13.13.13.3 reachable via ether2 distance=2 aaaaaaascope=30 target-scope=10 6 X S dst-address=192.168.4.0/24 gateway=12.12.12.2 aaaaaaagateway-status= 12.12.12.2 inactive check-gateway=ping aaaaaaadistance=1 scope=30 target-scope=1

R2 :

[R2] /ip route> /interface disable ether1

R1 :

[R1] /ip route> /tool traceroute 192.168.4.2

# ADDRESS LOSS SENT LAST AVG BEST WORST STD-DEV

STATUS

1 100% 2 timeout

2 100% 2 timeout

3 100% 2 timeout

4 100% 2 timeout

5 100% 2 timeout

Fail Over Target Scope

R1 :

[admin@R1] /ip route> print detail Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit 4 A S dst-address=192.168.4.0/24 gateway=12.12.12.2 aaaaaaagatewaystatus=12.12.12.2 inactive check-gateway=ping aaaaaaadistance=1 scope=30 targetscope=10 5 S dst-address=192.168.4.0/24 gateway=13.13.13.3 gateway-status=13.13.13.3 reachable via ether2 distance=2

R2 DAN R4:

[admin@R4] /ip route> /interface disable ether1

R1 :

[admin@R1] /ip route> print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit # DST-ADDRESS PREF-SRC GATEWAY DISTANCE 0 ADC 12.12.12.0/24 12.12.12.1 ether1 0 1 ADC 13.13.13.0/24 13.13.13.1 ether2 0 2 A S 24.24.24.0/24 12.12.12.2 1 3 A S 34.34.34.0/24 13.13.13.3 1 4 A S 192.168.4.0/24 12.12.12.2 1 5 S 192.168.4.0/24 13.13.13.3 2

[admin@R1] /ip route> /ping 192.168.4.2

SEQ HOST SIZE TTL TIME STATUS

0 192.168.4.2 timeout

1 192.168.4.2 timeout

3 192.168.4.2 timeout

[admin@R1] /ip route> print detail Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit 4 A S dst-address=192.168.4.0/24 gateway=12.12.12.2 aaaaaaagateway-status=12.12.12 inactive check-gateway=ping aaaaaaadistance=1 scope=30 target-scope=10 5 S dst-address=192.168.4.0/24 gateway=13.13.13.3 gateway-status=13.13.13.3 reachable via ether2 distance=2 aaaaaaascope=30 target-scope=10 [admin@R1] /ip route> set 4 gateway=24.24.24.4 target-scope=30

[admin@R1] /ip route> print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit

# DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 ADC 12.12.12.0/24 12.12.12.1 ether1 0

1 ADC 13.13.13.0/24 13.13.13.1 ether2 0

2 A S 24.24.24.0/24 12.12.12.2 1

3 A S 34.34.34.0/24 13.13.13.3 1

4 S 192.168.4.0/24 24.24.24.4 1

5 A S 192.168.4.0/24 13.13.13.3 2

Load Balancing

R1 :

[admin@R1] /ip route> print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit # DST-ADDRESS PREF-SRC GATEWAY DISTANCE 0 ADC 12.12.12.0/24 12.12.12.1 ether1 0 1 ADC 13.13.13.0/24 13.13.13.1 ether2 0 2 A S 24.24.24.0/24 12.12.12.2 1 3 A S 34.34.34.0/24 13.13.13.3 1 4 S 192.168.4.0/24 24.24.24.4 1 5 A S 192.168.4.0/24 13.13.13.3 2

[admin@R1] /ip route> disable 4,5

[admin@R1] /ip route> add dst-address=192.168.4.0/24 gateway=12.12.12.2,12.12.12.2, 13.13.13.3 [admin@R1] /ip route> print

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit

# DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 ADC 12.12.12.0/24 12.12.12.1 ether1 0

1 ADC 13.13.13.0/24 13.13.13.1 ether2 0

2 A S 24.24.24.0/24 12.12.12.2 1

3 A S 34.34.34.0/24 13.13.13.3 1

4 A S 192.168.4.0/24 12.12.12.2 1 12.12.12.2 13.13.13.3

5 X S 192.168.4.0/24 24.24.24.4 1

6 X S 192.168.4.0/24 13.13.13.3 2

[admin@R1] /ip route> /tool traceroute 192.168.4.2 src-address=12.12.12.1

# ADDRESS LOSS SENT LAST AVG BEST WORST STD-DEV STATUS

1 12.12.12.2 0% 4 1.2ms 1 0.9 1.2 0.1

2 24.24.24.4 0% 4 4.6ms 2.4 1.6 4.6 1.3

3 192.168.4.2 0% 4 2.8ms 4.8 2.1 10.5 3.4

Routing Type Unicast,Routing Type Blackhole,Routing Type Prohibit,Routing Type Unreachable

R1 :

[admin@R1] /ip address> /ip route add dst-address=192.168.2.0/24 gateway=12.12.12.2

[admin@R1] /ip route> print

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit

# DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 ADC 12.12.12.0/24 12.12.12.1 ether1 0

1 ADC 192.168.1.0/24 192.168.1.1 ether2 0

2 A S 192.168.2.0/24 12.12.12.2 1

[admin@R1] /ip route> set 2 type=blackhole

[admin@R1] /ip route> print detail

Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit

0 ADC dst-address=12.12.12.0/24 pref-src=12.12.12.1 gateway=ether1 gatewaystatus=ether1 reachable distance=0 scope=10

1 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether2 gatewaystatus=ether2 reachable distance=0 scope=10

2 A SB dst-address=192.168.2.0/24 type=blackhole distance=1

[admin@R1] /ip route> set 2 type=prohibit
[admin@R1] /ip route> print detail
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
0 ADC dst-address=12.12.12.0/24 pref-src=12.12.12.1 gateway=ether1 gatewaystatus=ether1 reachable distance=0 scope=10
1 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether2 gatewaystatus=ether2 reachable distance=0 scope=10
2 A SP dst-address=192.168.2.0/24 type=prohibit distance=1

[admin@R1] /ip route> se 2 type=unreachable
[admin@R1] /ip route> print detail Flags: X - disabled, A - active, D - dynamic, C - connect, S
- static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit
0 ADC dst-address=12.12.12.0/24 pref-src=12.12.12.1 gateway=ether1 gatewaystatus=ether1 reachable distance=0 scope=10
1 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether2 gatewaystatus=ether2 reachable distance=0 scope=10
2 A SU dst-address=192.168.2.0/24 type=unreachable distance=1

Routing Mark (IP → Route → Rules)

R1 :

[admin@MikroTik] > system identity set name=R1
[admin@R1] > ip address
[admin@R1] /ip address> add address=12.12.12.1/24 interface=ether1
[admin@R1] /ip address> add address=21.21.21.1/24 interface=ether2
[admin@R1] /ip address> add address=192.168.1.1/24 interface=ether3
[admin@R1] /ip address> add address=192.168.10.1/24 interface=ether4

R2 :

[admin@MikroTik] > system identity set name=R2
[admin@R2] > ip address
[admin@R2] /ip address> add address=12.12.12.2/24 interface=ether1
[admin@R2] /ip address> add address=21.21.21.2/24 interface=ether2
[admin@R2] /ip address> add address=192.168.2.1/24 interface=ether3

[admin@R1] /ip route> /ip firewall nat
[admin@R1] /ip firewall nat> add chain=srcnat out-interface=ether1 action=masquerade
[admin@R1] /ip firewall nat> add chain=srcnat out-interface=ether2 action=masquerade

Sekarang kita lakukan pengujian, dengan cara kita coba lakukan traceroute ke PC3

R1 :

[admin@R1]> /tool traceroute 192.168.2.2 src-address=192.168.1.1
# ADDRESS LOSS SENT LAST AVG BEST WORST STD-DEV STATUS
1 12.12.12.2 0% 7 1.4ms 1.3 1 1.7 0.2
2 192.168.2.2 0% 7 1.6ms 2.9 1.3 10.4 3.1

R2 :

[admin@R2]> /tool traceroute 192.168.2.2 src-address=192.168.10.1
# ADDRESS LOSS SENT LAST AVG BEST WORST STD-DEV STATUS
1 21.21.21.2 0% 7 1.4ms 1.3 1 1.7 0.2
2 192.168.2.2 0% 7 1.6ms 2.9 1.3 10.4 3.1

Change TTL

R1 :

[admin@R1] > /ip firewall mangle
[admin@R1] /ip firewall mangle> add chain=postrouting out-interface= ether2
action=change-ttl new-ttl=set:10

ping pc1 ke pc 2 :

PC1> ping 192.168.2.2
84 bytes from 192.168.2.2 icmp_seq=1 ttl=10 time=1.773 ms
84 bytes from 192.168.2.2 icmp_seq=2 ttl=10 time=1.632 ms
84 bytes from 192.168.2.2 icmp_seq=3 ttl=10 time=1.463 ms
84 bytes from 192.168.2.2 icmp_seq=4 ttl=10 time=1.809 ms
84 bytes from 192.168.2.2 icmp_seq=5 ttl=10 time=1.787 ms

OSPF Basic Configuration

R1 :

R2 :

Selanjutnya kita akan lakukan konfigurasi OSPF pada R1 dan R2
R1

[admin@R1] /ip address> /routing ospf
[admin@R1] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R1] /routing ospf> network add network=192.168.1.0/24 area=backbone
R2
[admin@R2] /ip address> /routing ospf
[admin@R2] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R2] /routing ospf> network add network=192.168.2.0/24 area=backbone

Sekarang kita lakukan pengujian, kita coba lihat tabel routing di R1 dan R2.
R1
[admin@R1] /routing ospf> /ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADC 12.12.12.0/24 12.12.12.1 ether1 0
1 ADC 192.168.1.0/24 192.168.1.1 ether2 0
2 Ado 192.168.2.0/24 12.12.12.2 1 10
R2
[admin@R2] /routing ospf> /ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADC 12.12.12.0/24 12.12.12.2 ether1 0
1 ADo 192.168.1.0/24 12.12.12.1 110
2 ADC 192.168.2.0/24 192.168.2.1 ether2 0

Selanjutnya coba lakukan ping dari PC1 ke PC2.
PC1> ping 192.168.2.2
84 bytes from 192.168.2.2 icmp_seq=1 ttl=62 time=2.136 ms
84 bytes from 192.168.2.2 icmp_seq=2 ttl=62 time=1.261 ms
84 bytes from 192.168.2.2 icmp_seq=3 ttl=62 time=1.349 ms
84 bytes from 192.168.2.2 icmp_seq=4 ttl=62 time=1.300 ms

Passive Interface

R1
[admin@R1] /routing ospf> interface add interface=ether2 passive=yes
R2
[admin@R2] /routing ospf> interface add interface=ether2 passive=yes

OSPF Authetication

Sebelumnya kita kita telah mengkonfigurasi OSPF pada R1 dan R2 terlebih dahulu,
selanjutnya kita akan melakukan konfigurasi authentication pada R1 dan R2 seperti berikut.
R1
[admin@R1] /routing ospf> interface add interface=ether1 authentication=md5
authentication-key=123
R2
[admin@R2] /routing ospf> interface add interface=ether1 authentication=md5
authentication-key=123
Setelah mengkonfigurasi authentication seperti ditas, pastikan state OSPF pada kedua
router sudah Full seperti berikut.
[admin@R1] /routing ospf> neighbor print
0 instance=default router-id=192.168.2.1 address=12.12.12.2 sssinterface=ether1 priority=1
dr-address=12.12.12.2 sssbackup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53

OSPF Router ID

Sekarang coba lihat router-id pada R1 dan R2.
R1
[admin@R1] /routing ospf> neighbor print
0 instance=default router-id=192.168.2.1 address=12.12.12.2 sssinterface=ether1 priority=1
dr-address=12.12.12.2 sssbackup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s
R2
[admin@R2] /routing ospf> neighbor print
0 instance=default router-id=192.168.1.1 address=12.12.12.1 sssinterface=ether1 priority=1
dr-address=12.12.12.2 sssbackup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s
Perhatikan bahwa router-id dari R2 adalah 192.168.2.1 (kita bisa tahu dari tabel neighbor di
R1) dan router id dari R1 adalah 192.168.1.1. Kita coba konfigurasi router-id pada R1 dan
R2.
R1
[admin@R1] /routing ospf> instance set default router-id=1.1.1.1
R2
[admin@R2] /routing ospf> instance set default router-id=2.2.2.2
Sekarang kita lakukan pengujian, dengan cara kita coba lihat lagi tabel neighbor pada R1
dan R2
R1
[admin@R1] /routing ospf> neighbor print
0 instance=default router-id=2.2.2.2 address=12.12.12.2 sssinterface=ether1 priority=1 draddress=12.12.12.2 sssbackup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s
R2
admin@R2] /routing ospf> neighbor print
0 instance=default router-id=1.1.1.1 address=12.12.12.1 sssinterface=ether1 priority=1 draddress=12.12.12.2 sssbackup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s

Hello & Dead Interval

Yang di maksud Hello interval adalah selang waktu yang digunakan oleh sebuah router OSPF untuk mengirimkan hello packet. Secara default nilai hello interval adalah 10 detik, jadi router OSPF akan mengirimkan hello packet setiap 10 detik. Selanjutnya Dead interval berfungsi untuk menunjukkan berapa lama waktu sampai router OSPF menyatakan neighbornya down setelah tidak menerima hello packet. Secara default nilai dead interval adalah 40 detik yang artinya router OSPF akan menyatakan neighbornya down jika tidak menerima hello packet selama 40 detik.

R1
[admin@R1] /routing ospf> interface print detail
Flags: X - disabled, I - inactive, D - dynamic, P - passive
1 interface=ether1 cost=10 priority=1 authentication=md5 dddddauthentication-key="123"
authentication-key-id=1 dddddnetwork-type=default instance-id=0 retransmit-interval=5s
transmit-delay=1s hello-interval=10s dead-interval=40s use-bfd=no

Coba kita perhatikan di atas bahwa nilai default hello interval adalah 10 detik dan nilai default
dead interval adalah 40 detik.
Kita bisa melakukan manipulasi terhadap nilai hello dan dead interval tersebut, dengan
catatan nilai dead interval harus lebih besar dari hello interval dan dua router yang
bertetangga harus memiliki nilai hello dan dead interval yang sama.
R1
[admin@R1] /routing ospf> interface set 1 hello-interval=15 dead-interval=60
Di sini jika kita hanya melakukan perubahan nilai hello interval dan dead interval pada R1
saja, maka R1 dan R2 tidak akan mencapai kondisi adjacency.
[admin@R1] /routing ospf> neighbor print
[admin@R1] /routing ospf>
Kita bisa lihat di atas bahwa tabel neighbor pada R1 kosong. Hal ini dikarenakan nilai hello
interval dan dead interval pada R1 dan R2 tidak sama

Kita bisa lihat di bawah ini bahwa saat ini tabel neighbor pada R1 sudah kembali lagi dan
statenya sudah full
[admin@R2] /routing ospf> interface print
Flags: X - disabled, I - inactive, D - dynamic, P - passive
# INTERFACE COST PRIORITY NETWORK-TYPE AUTHENTICATION
0 P ether2 10 1 default none
1 ether1 10 1 default md5 123
[admin@R2] /routing ospf> interface set 1 hello-interval=15 dead-interval=60

DR & DBR

Untuk pemilihan DR dan BDR didasarkan pada priority tertinggi pada interface router, namun jika ternyata prioritas pada seluruh router sama, maka DR dan BDR akan dipilih berdasar router-id tertinggi. Secara default nilai priority pada setiap interface router ospf adalah 1. Jika kita mengacu pada topologi sebelumnya, maka R2 akan menjadi DR dan R1 akan menjadi BDR, hal ini dikarenakan R2 memiliki router-id yang lebih tinggi daripada R1.

[admin@R1] /routing ospf> neighbor print
0 instance=default router-id=2.2.2.2 address=12.12.12.2 sssinterface=ether1 priority=1 draddress=12.12.12.2 backup-dr-address=12.12.12.1 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s
Selanjutnya kita coba naikkan priority pada interface R1 agar R1 menjadi DR dan R2
menjadi BDR.
[admin@R1] /routing ospf> interface print
Flags: X - disabled, I - inactive, D - dynamic, P - passive
# INTERFACE COST PRIORITY NETWORK-TYPE AUTHENTICATION
0 P ether2 10 1 default none
1 ether1 10 1 default md5 123
[admin@R1] /routing ospf> interface set 1 priority=10
Untuk membuat perubahan, kadang kita harus merestart routernya terlebih dahulu.
[admin@R2] /routing ospf> /system reboot
Reboot, yes? [y/N]: y

Setelah kita merestart router, kita coba lihat lagi tabel neighbor pada R1
[admin@R1] /routing ospf> neighbor print
0 instance=default router-id=2.2.2.2 address=12.12.12.2 sssinterface=ether1 priority=1 draddress=12.12.12.1 backup-dr-address=12.12.12.2 state="Full" state-changes=6 lsretransmits=0 ls-requests=0 db-summaries=0 adjacency=53s
Kita bisa lihat di atas bahwa saat ini R1 menjadi DR dan R2 menjadi BDR.

LSA Type 1 & 2

LSA merupakan kumpulan informasi yang digunakan oleh OSPF untuk menyusun tabel
routing. Pada jaringan single area OSPF, akan beredar dua tipe LSA, yaitu LSA tipe 1 dan 2
:

LSA tipe 1 akan dibuat oleh setiap router,

LSA tipe 2 hanya akan dibuat oleh router DR.
LSA tipe 1 biasa disebut router LSA sedangkan LSA tipe 2 biasa disebut network
LSA.Sekarang kita cek table routing pada R1
[admin@R1] > /routing ospf
[admin@R1] /routing ospf> lsa print
AREA TYPE ID ORIGINATOR AGE
Backbone router 1.1.1.1 1.1.1.1 166
backbone router 2.2.2.2 2.2.2.2 167
backbone network 12.12.12.1 1.1.1.1 166
Perhatikan bahwa ada dua LSA tipe 1 dan satu LSA tipe 2. Dua LSA tipe 1 tersebut dibuat
oleh R1 dan R2 (perhatikan kolom originator), sedangkan LSA tipe 2 dibuat oleh R1 yang
bertindak sebagai DR.
Setiap router OSPF yang berada dalam satu area akan memiliki LSA yang sama
[admin@R2] > /routing ospf
[admin@R2] /routing ospf> lsa print
AR TYPE ID ORIGINATOR AGE
Backbone router 1.1.1.1 1.1.1.1 166
backbone router 2.2.2.2 2.2.2.2 167
backbone network 12.12.12.1 1.1.1.1 166

OSPF Multi Area

Pertama kita konfigurasi IP Address pada seluruh router
R1
[admin@MikroTik] > system identity set name=R1
[admin@R1] > ip address
[admin@R1] /ip address> add address=12.12.12.1/24 interface=ether1
[admin@R1] /ip address> add address=192.168.1.1/24 interface=ether2
R2
[admin@MikroTik] > system identity set name=R2
[admin@R2] > ip address
[admin@R2] /ip address> add address=12.12.12.2/24 interface=ether1
[admin@R2] /ip address> add address=23.23.23.2/24 interface=ether2
R3
[admin@MikroTik] > system identity set name=R3
[admin@R3] > ip address
[admin@R3] /ip address> add address=23.23.23.3/24 interface=ether1
[admin@R3] /ip address> add address=192.168.2.1/24 interface=ether2
Setelah itu kita konfigurasikan OSPF pada R1, R2, dan R3
R1
[admin@R1] /ip address> /routing ospf
[admin@R1] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R1] /routing ospf> network add network=192.168.1.0/24 area=backbone
R2
[admin@R2] /ip address> /routing ospf
[admin@R2] /routing ospf> area add name=area1 area-id=0.0.0.1
[admin@R2] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R2] /routing ospf> network add network=23.23.23.0/24 area=area1
R3
[admin@R3] /ip address> /routing ospf
[admin@R3] /routing ospf> area add name=area1 area-id=0.0.0.1
[admin@R3] /routing ospf> network add network=23.23.23.0/24 area=area1
[admin@R3] /routing ospf> network add network=192.168.3.0/24 area=area1
Dan sebagai pengujian, kita coba lihat tabel routing pada R1 .
[admin@R1] /routing ospf> /ip route print detail
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
0 ADC dst-address=12.12.12.0/24 pref-src=12.12.12.1 gateway=ether1 gatewaystatus=ether1 reachable distance=0 scope=10
1 ADo dst-address=23.23.23.0/24 gateway=12.12.12.2 gateway-status=12.12.12.2
reachable via ether1 distance=110 sssssssscope=20 target-scope=10 ospf-metric=20 ospftype=inter-area
2 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether2 gatewaystatus=ether2 reachable distance=0 scope=10
3 ADo dst-address=192.168.2.0/24 gateway=12.12.12.2 gateway-status=12.12.12.2
reachable via ether1 distance=110 sssssssscope=20 target-scope=10 ospf-metric=30 ospftype=inter-are

Kalau kita perhatikan table routing di atas bahwa R1 sudah mengetahui dua remote
networknya melalui OSPF. Dan kedua network tersebut berada di area lain, ditandai dengan
ospf type nya adalah inter-area. Jika suatu network berada satu area dengan router, maka
typenya adalah intra-area.
Sekarang coba lakukan ping dari PC1 ke PC2
PC1> ping 192.168.2.2
84 bytes from 192.168.2.2 icmp_seq=1 ttl=61 time=4.819 ms
84 bytes from 192.168.2.2 icmp_seq=2 ttl=61 time=2.203 ms
84 bytes from 192.168.2.2 icmp_seq=3 ttl=61 time=2.841 ms
84 bytes from 192.168.2.2 icmp_seq=4 ttl=61 time=1.791 ms

LSA Type 3

Sebelumnya pada jaringan single area OSPF, kita tahu bahwa ada dua tipe LSA yang
beredar, yaitu LSA tipe 1 dan tipe 2. Selanjutnya pada multi area OSPF akan beredar satu
LSA tambahan, yaitu LSA Type 3. LSA tipe 3, atau biasa disebut summary-network LSA ini
dibuat oleh router yang bertindak sebagai ABR.
Area Border Router (ABR) merupakan router yang menjadi penghubung antara dua atau
lebih area yang berbeda. Perhatikan LSA yang ada di R1 berikut
[admin@R1] /routing ospf> lsa print
AREA TYPE ID ORIGINATOR AGE
backbone router 12.12.12.1 12.12.12.1 591
backbone router 12.12.12.2 12.12.12.2 587
backbone network 12.12.12.1 12.12.12.1 591
backbone summary-network 23.23.23.0 12.12.12.2 591
backbone summary-network 192.168.2.0 12.12.12.2 514
Perhatikan bahwa ada dua LSA tipe 3 yang berada di R1. Kedua LSA tipe 3 ini membawa
informasi tentang network-network yang berada di area lain (area 1). Perhatikan ID yang
menunjukkan IP Network yang berada di area 1, yaitu 23.23.23.0 dan 192.168.2.0.
Sekarang kita coba lihat lsa pada R3
[admin@R3] /routing ospf> lsa print
AREA TYPE ID ORIGINATOR AGE
area1 router 12.12.12.2 12.12.12.2 548
area1 router 23.23.23.3 23.23.23.3 529
area1 network 23.23.23.3 23.23.23.3 547
area1 summary-network 12.12.12.0 12.12.12.2 605
area1 summary-network 192.168.1.0 12.12.12.2 595
Perhatikan bahwa pada R3 juga terdapat dua LSA tipe 3 yang membawa informasi tentang
network yang berada di backbone area, yaitu 12.12.12.0 dan 192.168.1.0.

OSPF Virtual Link

R1
[admin@Mikrotik] > system identity set name=R1
[admin@R1] > ip address
[admin@R1] /ip address> add address=12.12.12.1/24 interface=ether1
[admin@R1] /ip address> add address=192.168.1.1/24 interface=ether2
R2
[admin@MikroTik] > system identity set name=R2
[admin@R2] > ip address
[admin@R2] /ip address> add address=12.12.12.2/24 interface=ether1
[admin@R2] /ip address> add address=23.23.23.2/24 interface=ether2
R3
[admin@MikroTik] > system identity set name=R3
[admin@R3] > ip address
[admin@R3] /ip address> add address=23.23.23.3/24 interface=ether1
[admin@R3] /ip address> add address=34.34.34.3/24 interface=ether2
R4
[admin@MikroTik] > system identity set name=R4
[admin@R4] > ip address
[admin@R4] /ip address> add address=34.34.34.4/24 interface=ether1
[admin@R4] /ip address> add address=192.168.2.1/24 interface=ether2
Di lanjutkan lagi sekarang kita konfigurasikan OSPF pada seluruh router.
R1
[admin@R1] /ip address> /routing ospf
[admin@R1] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R1] /routing ospf> network add network=192.168.1.0/24 area=backbone
R2
[admin@R2] /ip address> /routing ospf
[admin@R2] /routing ospf> area add name=area1 area-id=0.0.0.1
[admin@R2] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R2] /routing ospf> network add network=23.23.23.0/24 area=area1
R3
[admin@R3] /ip address> /routing ospf
[admin@R3] /routing ospf> area add name=area1 area-id=0.0.0.1
[admin@R3] /routing ospf> area add name=area2 area-id=0.0.0.2
[admin@R3] /routing ospf> network add network=23.23.23.0/24 area=area1
[admin@R3] /routing ospf> network add network=34.34.34.0/24 area=area2
R4
[admin@R4] /ip address> /routing ospf
[admin@R4] /routing ospf> area add name=area2 area-id=0.0.0.2
[admin@R4] /routing ospf> network add network=34.34.34.0/24 area=area2
[admin@R4] /routing ospf> network add network=192.168.2.0/24 area=area2
Sekarang kita lihat tabel routing di R4.
[admin@R4] /routing ospf> /ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable , P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 23.23.23.0/24 34.34. 34.3 110
1 ADC 34.34.34.0/24 34.34.34.4 ether1 0
2 ADC 192.168.2.0/24 192.168.2.1 ether2 0
Bisa kita lihat bahwa R4 belum mengetahui network-network yang berada di area 0. Hal ini
dikareanakan R4 berada di area 2 yang tidak terhubung langsung dengan area 0. Untuk
mengatasi hal ini, kita harus membuat virtual link antara R2 dan R3
R2
[admin@R2] /routing ospf> instance set default router-id=2.2.2.2
[admin@R2] /routing ospf> virtual-link add transit-area=area1 neighbor-id=3.3.3.3
R2
[admin@R3] /routing ospf> instance set default router-id=3.3.3.3
[admin@R3] /routing ospf> virtual-link add transit-area=area1 neighbor-id=2.2.2.2
Sekarang kita lihat lagi tabel routing di R4
[admin@R4] /routing ospf> /ip route print
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADo 12.12.12.0/24 34.34.34.3 110
1 ADo 23.23.23.0/24 34.34.34.3 110
2 ADC 34.34.34.0/24 34.34.34.4 ether1 0
3 ADo 192.168.1.0/24 34.34.34.3 110
4 ADC 192.168.2.0/24 192.168.2.1 ether2 0
Dapat kita lihat bahwa setelah kita mengkonfigurasi virtual link, maka R4 akan mengetahui
network-network yang berada di area 0 (backbone)

Redistribution Type 1

Redistribution adalah sebuah teknik untuk saling mengenalkan antara dua atau lebih routing
protocol yang berbeda. Misal OSPF dengan RIP, OSPF dengan static, OSPF dengan
connected, RIP dengan connected, dll.
OSPF memiliki dua type redistribution, yaitu type 1 dan type 2. Antara type 1 & 2 mereka
memiliki perbedaan. Apa yang menjadi perbedaannya ??? Langsung saja kita praktekkan
pada topologi yang akan kita gunakan di lab ini

Yang pertama akan kita konfigurasikan IP Address pada R1 dan R2.
R1
[admin@MikroTik] > system identity set name=R1
[admin@R1] > ip address
[admin@R1] /ip address> add address=12.12.12.1/24 interface=ether1
[admin@R1] /ip address> add address=192.168.1.1/24 interface=ether2
R2
[admin@MikroTik] > system identity set name=R2
[admin@R2] > ip address
[admin@R2] /ip address> add address=12.12.12.2/24 interface=ether1
[admin@R2] /ip address> add address=192.168.2.2/24 interface=ether2
Setelah itu selanjutnya kita konfigurasi OSPF pada R1 dan R2
R1
[admin@R1] /ip address> /routing ospf
[admin@R1] /routing ospf> network add network=12.12.12.0/24 area=backbone
R2
[admin@R2] /ip address> /routing ospf
[admin@R2] /routing ospf> network add network=12.12.12.0/24 area=backbone
[admin@R2] /routing ospf> network add network=192.168.2.0/24 area=backbone
Kalian bisa lihat di atas bahwa kita tidak melakukan advertise network 192.168.1.0/24 pada
R1. Hal ini dikareanakan kita ingin melakukan redistribute.
[admin@R1] /routing ospf> instance set default redistribute-connected=as-type-1
Dan setelah kita melakukan redistribute di R1 seperti ditas, maka R2 akan mengetahui
network 192.168.1.0/24 dengan type external seperti di bawah ini.
[admin@R2] /routing ospf> /ip route print detail
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m
- mme, B - blackhole, U - unreachable, P - prohibit
0 ADC dst-address=12.12.12.0/24 pref-src=12.12.12.2 gateway=ether1 gatewaystatus=ether1 reachable distance=0 scope=10
1 ADo dst-address=192.168.1.0/24 gateway=12.12.12.1 gateway-status=12.12.12.1
reachable via ether1 distance=110 scope=20 target-scope=10 ospf-metric=30 ospftype=external-type-1
2 ADC dst-address=192.168.2.0/24 pref-src=192.168.2.1 gateway=ether2 gatewaystatus=ether2 reachable distance=0 scope=10
Coba kita perhatikan bahwa metric dari route tersebut adalah 30, angka 30 didapat dari
penjumlahan antara external metric dan internal metric. External metric dari connected route
adalah 20 sedangkan internal metric antara R2 dan R1 adalah 10, sehingga metric dari R2
untuk menuju network 192.168.1.0/24 adalah 30.

Pages

Modul jaringan komputer 4

Static routing

Static routing dua router

Static Routing 3 Komputer

Routing Static Empat Router

Static Routing Summarization

Static Routing Default Route

Point To Point Addressing

prioritas routing

Fail Over

Fail Over Without Check Gateway

Fail Over Target Scope

Load Balancing

Routing Type Unicast,Routing Type Blackhole,Routing Type Prohibit,Routing Type Unreachable

Routing Mark (IP → Route → Rules)

Change TTL

OSPF Basic Configuration

Passive Interface

OSPF Authetication

OSPF Router ID

Hello & Dead Interval

DR & DBR

LSA Type 1 & 2

OSPF Multi Area

LSA Type 3

OSPF Virtual Link

Redistribution Type 1

Belum ada tanggapan untuk "Modul jaringan komputer 4"

Post a Comment

Modul jaringan komputer 4

Static routing

Static routing dua router

Static Routing 3 Komputer

Routing Static Empat Router

Static Routing Summarization

Static Routing Default Route

Point To Point Addressing

prioritas routing

Fail Over

Fail Over Without Check Gateway

Fail Over Target Scope

Load Balancing

Routing Type Unicast,Routing Type Blackhole,Routing Type Prohibit,Routing Type Unreachable

Routing Mark (IP → Route → Rules)

Change TTL

OSPF Basic Configuration

Passive Interface

OSPF Authetication

OSPF Router ID

Hello & Dead Interval

DR & DBR

LSA Type 1 & 2

OSPF Multi Area

LSA Type 3

OSPF Virtual Link

Redistribution Type 1

Postingan terkait:

Belum ada tanggapan untuk "Modul jaringan komputer 4"

Post a Comment